Download free SCADA Cyber Security Risk Assessments Tools. This Tools covers:
What processes are in place to identify security risks from cyber incidents in our SCADA system?
Considering the potential for security risks associated with SCADA systems, it is important that there is a framework in place to identify possible risks for existing and new SCADA systems. As SCADA systems are becoming increasingly interconnected with the Internet and corporate networks they are also becoming more exposed to Internet security threats and network vulnerabilities.

What strategies have been put in place to manage these risks?
It is crucial for SCADA managers to put in place appropriate risk management strategies. Such strategies might include regular vulnerability assessments of SCADA systems, processes for patch management and configuration management, communication between engineering and IT departments, staff training, appropriate network architecture etc.

How regularly are vulnerability assessments undertaken of our SCADA system?

Download free SCADA Security Vulnerability Checklist:

- Commodity infrastructure: The changes in SCADA systems have exposed them to vulnerabilities that may not have existed before. For example, the switch from using leased telecommunications lines to public infrastructure ie. public CDMA and GSM networks, the use of commodity computers running commodity software and the change from proprietary to open standards have meant that vulnerabilities have been introduced into SCADA systems.

Download free SCADA Security Self Assessment Analysis Tools. This covers Assessment Process which features:
- Data Collection Approach: What type of approach is used for performing the assessment (e.g., questionnaire/checklist, interview/audit)?
Questions, generally open ended.

- Detailed Operator Guidance: Does the tool or its documentation provide detailed guidance to assist the operator, such filled out examples or checklists of assets to consider, potential vulnerabilities, adversaries, etc.?

Download free ISO 27001 Access Control Security Mechanism Checklists. This Access Control Checklist covers:

• Access control lists (ACLs). ACLs are posted centrally and implement access by representing the columns as lists of users attached to the protected objects. The speed of ACL searches can be increased by the use of user groups and wildcards. Also, groups make the management of ACLs easier. Access to the ACLs need to be controlled as tightly as the objects themselves or they can be manipulated.

• Capabilities. This involves the assignment of a required capability set to an object (file, directory, process, and so forth) such that only those subjects (users or processes)

Download free Risk Assessment Audit Program Checklist. This Risk Assessment Audit Program covers detail risk that identified within Risk Analysis process and the audit procedures that should be performed such as risks that:
- Management does not have a business planning process in place that examines existing objectives and establishes new objectives when necessary.
- Management has not established business plans and budgets with realistic goals, and incentives for achievement of plans are not balanced.